General
-
Target
test.test
-
Size
222KB
-
Sample
210923-x2mq1sfacm
-
MD5
539e0a32348f112da72bb7868fd5cfac
-
SHA1
bcdfd82522a0a45af4e4064c7f509b29b8ea83ed
-
SHA256
4545b601c6d8a636dce6597da6443dce45d11b48fcf668336bcdf12ffdc3e97e
-
SHA512
d3b46706f1724bf9e4daf53461ebdcef607354b2d30608e9fe2cf33aa282eac7143071ac1e8712679f15bf72abf7454562f4179a90f5a6d61af5658cb3fe762d
Static task
static1
Behavioral task
behavioral1
Sample
test.test.dll
Resource
win7v20210408
Behavioral task
behavioral2
Sample
test.test.dll
Resource
win10-en-20210920
Malware Config
Extracted
squirrelwaffle
pop.vicamtaynam.com/VtyiHAft
snsvidyapeeth.in/aXmo2Dr3
trinitytesttubebaby.com/QR2JvfE3Sv
iconskw.com/cqdPtAbZ
ebookchuyennganh.com/v9PMvQDxHK8W
alsader.net/BHdQaiQ9rt
avyanshglobal.com/6pYjPlqf
primahills-online.com/ypCiZn7tMx
antoniocastroycia.com.co/WHe08obY
apexbiotech.net/VQgunQ4t5Ue
vscm.in/V3tYKxDz
sinaloworx.co.za/3GilA8Eo3r
dancongnghe.xyz/yRByhX6J3REI
trajesuniformes.com.br/qQofZMaJm
fiorenzapaes.com.br/PGYpETW7
astetinternational.com/arW5e44Y7vzO
razisystem.ir/MqvvkX0cWvn
krishnaiti.org.in/rWA02HQY4
Targets
-
-
Target
test.test
-
Size
222KB
-
MD5
539e0a32348f112da72bb7868fd5cfac
-
SHA1
bcdfd82522a0a45af4e4064c7f509b29b8ea83ed
-
SHA256
4545b601c6d8a636dce6597da6443dce45d11b48fcf668336bcdf12ffdc3e97e
-
SHA512
d3b46706f1724bf9e4daf53461ebdcef607354b2d30608e9fe2cf33aa282eac7143071ac1e8712679f15bf72abf7454562f4179a90f5a6d61af5658cb3fe762d
Score10/10-
suricata: ET MALWARE Possible SQUIRRELWAFFLE Server Response
suricata: ET MALWARE Possible SQUIRRELWAFFLE Server Response
-
suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
suricata: ET MALWARE SQUIRRELWAFFLE Loader Activity (POST)
-
suricata: ET MALWARE SQUIRRELWAFFLE Server Response
suricata: ET MALWARE SQUIRRELWAFFLE Server Response
-
squirrelwaffle
Squirrelwaffle Payload
-
Blocklisted process makes network request
-